In the Claims 



The status of claims in the case is as follows: 



1 1. [Original] Method for nesting connections between a 

2 plurality of nodes in a communication network, comprising 

3 the steps of: 

4 receiving at a first node on an outer connection a 

5 request from a second node to establish a coincident 

6 endpoint for nesting an inner connection within said 

7 outer connection; 

8 negotiating over said outer connection parameters 

9 defining said inner connection; and thereafter 

10 responsive to communication occurring on said inner 

11 connection, at said first node linking to said outer 

12 connection for selectively receiving or sending said 

13 communication double nested on said outer connection. 
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2. [Original] The method of claim 1, said inner 
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connection being a secure connection. 

3. [Original] The method of claim 2, said inner 
connection being an IPsec connection. 

4. [Original] The method of claim 3, further comprising 
the step of using Layer 2 Tunnel Protocol (L2TP) to tunnel 
packets across said communication network. 

5. [Original] Method for operating an enterprise gateway, 
comprising the steps of: 

receiving at said gateway from a remote client a 
request to establish an outer connections- 
receiving at said gateway over said outer connection a 
request to establish, and thereupon negotiating 
parameters establishing, a secure inner connection; 

responsive to outbound or inbound traffic on said inner 
connection, establishing links to said outer connection 
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10 for communicating said traffic double nested on said 

11 outer connection. 

1 6. [Original] The method of claim 5, further comprising 

2 the step of : 

3 establishing a local coincident endpoint of said inner 

4 and outer connections at said gateway. 

1 7. [Original] The method of claim 5, further comprising 

2 the step of : 

3 tunneling packets across said communication network 

4 using Layer 2 Tunnel Protocol (L2TP) . 

1 8. [Original] A method for operating a first one of a 

2 plurality of nodes in a communications network, comprising 

3 the steps of: 

4 establishing at said first node a coincident endpoint 

5 for an outer connection and an inner connection with at 
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6 least one second node in said network; 

7 responsive to starting communication of traffic over 

8 said connections, establishing a link from said inner 

9 connection to said outer connection; and 

10 responsive to said links, selectively encapsulating 

11 said traffic to said outer connection for transfer to 

12 said second node or decapsulating said traffic from 

13 said outer connection for receipt at said first node. 

1 9. [Original] The method of claim 8, said inner 

2 connection being a secure connection. 

1 10. [Original] The method of claim 8, further comprising 

2 the step of: 

3 tunneling packets across said communication network 

4 using Layer 2 Tunnel Protocol (L2TP) . 



1 



11. [Currently amended] Method for for nesting nesting 
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2 connections between a plurality of nodes in a communication 

3 network, said nodes including a client, and internet service 

4 provider (ISP) , an enterprise gateway, and an internal 

5 network, comprising the steps of: 

6 operating said client node to call said ISP node; 

7 operating said ISP node to start an outer connection 

8 with respect to said gateway node and to return an IP 

9 address to said client node; 

10 operating said client node to send to said gateway node 

11 over said outer connection a request to establish a 

12 secure nested inner connection; 

13 operating said client node and said gateway node to 

14 negotiate over said outer connection parameters 

15 defining said secure nested inner connection, and 

16 saving said parameters at said gateway node; and 

17 thereafter 

18 operating said client node to start said inner 

19 connection; and 
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2 0 operating said gateway node to recognize the start of 

21 said inner connection and to link said inner connection 

22 to said outer connection. 

1 12. [Original] The method of claim 11, further comprising 

2 the steps of: 

3 sending outbound traffic in said inner connection 

4 double nested in said outer connection. 

1 13. [Original] The method of claim 12, further comprising 

2 the steps of: 

3 operating said ISP node to decapsulate said outer 

4 connection; and 

5 operating said client node to decapsulate said inner 

6 connection. 

1 14. [Original] The method of claim 13, further comprising 

2 the step of: 
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3 tunneling packets across said communication network 

4 using Layer 2 Tunnel Protocol (L2TP) . 

1 15. [Original] System for nesting connections between a 

2 plurality of nodes in a communication network, comprising: 

3 a first node on an outer connection for receiving a 

4 request from a second node to establish a coincident 

5 endpoint for nesting an inner connection within said 

6 outer connection; 

7 said first and second nodes negotiating over said outer 

8 connection parameters defining said inner connection; 

9 and thereafter 

10 said first node being responsive to communication 

11 occurring on said inner connection for linking to said 

12 outer connection for selectively receiving or sending 

13 said communication double nested on said outer 

14 connection - 
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1 16. [Original] The system of claim 15, said inner 

2 connection being a secure connection. 

1 17. [Original] The system of claim 16, said inner 

2 connection being an IPsec connection. 

1 18. [Original] The system of claim 17, further comprising 

2 a Layer 2 Tunnel Protocol (L2TP) connection for tunneling 

3 packets across said communication networl^:. 

1 19. [Original] A program storage device readable by a 

2 machine, tangibly embodying a program of instructions 

3 executable by a machine to perform method steps for nesting 

4 connections between a plurality of nodes in a communication 

5 networlc, said method steps comprising: 

6 receiving at a first node on an outer connection a 

7 request from a second node to establish a coincident 

8 endpoint for nesting an inner connection within said 

9 outer connection; 
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10 negotiating over said outer connection parameters 

11 defining said inner connection; and thereafter 

12 responsive to communication occurring on said inner 

13 connection, at said first node linking to said outer 

14 connection for selectively receiving or sending said 

15 communication double nested on said outer connection. 

1 20. [Original] A program storage device readable by a 

2 machine, tangibly embodying a program of instructions 

3 executable by a machine to perform method steps for 

4 operating an enterprise gateway, said method steps 

5 comprising : 

6 receiving at said gateway from a remote client a 

7 request to establish an outer connection; 

8 receiving at said gateway over said outer connection a 

9 request to establish, and thereupon negotiating 

10 parameters establishing, a secure inner connection; 

11 responsive to outbound or inbound traffic on said inner 

12 connection, establishing links to said outer connection 
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for communicating said traffic double nested on said 
outer connection, 

21. [Original] A program storage device readable by a 
machine, tangibly embodying a program of instructions 
executable by a machine to perform method steps for 
operating a first one of a plurality of nodes in a 
communications network, comprising the steps of: 

establishing at said first node a coincident endpoint 
for an outer connection and an inner connection with at 
least one second node in said network; 

responsive to starting communication of traffic over 
said connections, establishing a link from said inner 
connection to said outer connection; and 

responsive to said links, selectively encapsulating 
said traffic to said outer connection for transfer to 
said second node or decapsulating said traffic from 
said outer connection for receipt at said first node. 
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1 22. [Original] A computer program product or computer 

2 program element for nesting connections between a plurality 

3 of nodes in a communication network according to steps 

4 comprising: 

5 receiving at a first node on an outer connection a 

6 request from a second node to establish a coincident 

7 endpoint for nesting an inner connection within said 

8 outer connection; 

9 negotiating over said outer connection parameters 

10 defining said inner connection; and thereafter 

11 responsive to communication occurring on said inner 

12 connection, at said first node linking to said outer 

13 connection for selectively receiving or sending said 

14 communication double nested on said outer connection. 

1 23. [Original] A computer program product or computer 

2 program element for perform method steps for operating an 

3 enterprise gateway according to method steps comprising: 



4 



receiving at said gateway from a remote client a 
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request to establish an outer connection; 

receiving at said gateway over said outer connection a 
request to establish, and thereupon negotiating 
parameters establishing, a secure inner connection; 

responsive to outbound or inbound traffic on said inner 
connection, establishing links to said outer connection 
for communicating said traffic double nested on said 
outer connection. 

24. [Original] A computer program product or computer 
program element for operating a first one of a plurality of 
nodes in a communications network according to method steps 
comprising : 

establishing at said first node a coincident endpoint 
for an outer connection and an inner connection with at 
least one second node in said network; 

responsive to starting communication of traffic over 
said connections, establishing a link from said inner 
connection to said outer connection; and 
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11 responsive to said links, selectively encapsulating 

12 said traffic to said outer connection for transfer to 

13 said second node or decapsulating said traffic from 

14 said outer connection for receipt at said first node. 
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